On IAS, it supports PAP, CHAP, MS-CHAP and MS-CHAPII authentication methods. Whenever PAP was taken out of list of authentication methods, any attempt to login to the router fails. Only when PAP is enabled, the above configuration seems to work. Since PAP is not secure, I am just wondering if we can force Cisco end to use CHAP or other more secure methods for its radius authentication.

We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...
view more